Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/E31238DC7A3011EE92118B5C4AD9E6FC.roa
File: E31238DC7A3011EE92118B5C4AD9E6FC.roa (raw, json)
Hash identifier: RR+iBahtxReIM0E4T6G3m2rSpfGfa+iL5OHNZ7MFZZ8=
Subject key identifier: 5D:85:90:74:57:61:6C:29:CC:9D:F4:06:5C:8C:30:55:E8:FC:B7:2F
Certificate issuer: /CN=F3626CB6AR/serialNumber=B9FDD8953349716ADAE7A8D1BB13CC27F520FFD6
Certificate serial: 051E
Authority key identifier: B9:FD:D8:95:33:49:71:6A:DA:E7:A8:D1:BB:13:CC:27:F5:20:FF:D6
Authority info access: rsync://rpki.afrinic.net/repository/arin/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/E31238DC7A3011EE92118B5C4AD9E6FC.roa
Signing time: Fri 03 Nov 2023 10:08:08 +0000
ROA not before: Fri 03 Nov 2023 10:08:05 +0000
ROA not after: Sun 03 Nov 2024 10:08:05 +0000
asID: 398465
IP address blocks: 156.0.108.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1310 (0x51e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3626CB6AR/serialNumber=B9FDD8953349716ADAE7A8D1BB13CC27F520FFD6
Validity
Not Before: Nov 3 10:08:05 2023 GMT
Not After : Nov 3 10:08:05 2024 GMT
Subject: CN=6544c688-2f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:4d:dd:74:02:9f:f6:59:64:47:02:70:af:ad:
82:46:a2:5a:40:34:e1:e5:dd:bd:53:4b:7b:8c:7e:
98:17:03:7c:2c:2d:b3:6e:7f:c3:81:82:85:96:58:
1e:b4:fa:31:eb:55:19:56:e1:17:32:ce:59:34:39:
24:be:06:05:78:6e:4c:f5:6e:cb:0c:08:5d:dc:f8:
a0:b6:97:d8:17:6a:86:85:2d:73:7f:3f:ff:85:cb:
c0:f4:44:41:d4:ee:45:de:48:c1:66:39:04:0a:11:
ca:6f:1d:80:9a:3c:09:e6:16:ba:07:4c:91:ec:4f:
63:ae:7d:1b:b4:02:d7:82:6a:5e:68:37:5d:31:bb:
62:b4:1b:1d:d3:7e:a1:2d:d0:9a:95:08:d6:c6:4e:
09:27:8f:7b:85:bb:15:93:3f:18:e4:e3:21:5e:5f:
6c:4d:4f:cb:bc:ef:15:64:bc:a4:8a:65:b6:cc:8b:
49:17:50:7e:fa:f3:ae:1b:3d:09:d6:73:7d:90:1f:
fe:85:e6:b9:1a:c0:71:e5:b3:65:11:88:8f:17:e2:
0f:cc:5a:aa:a0:41:47:18:f0:fd:72:5f:45:fb:5e:
de:05:7d:87:33:44:8e:83:2e:c4:40:ff:75:98:82:
8e:cf:ea:34:0d:f3:73:ea:ee:86:de:97:b3:17:f7:
b6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:85:90:74:57:61:6C:29:CC:9D:F4:06:5C:8C:30:55:E8:FC:B7:2F
X509v3 Authority Key Identifier:
keyid:B9:FD:D8:95:33:49:71:6A:DA:E7:A8:D1:BB:13:CC:27:F5:20:FF:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/uf3YlTNJcWra56jRuxPMJ_Ug_9Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3626CB6/02B8B9488BD911EB91C9A537F8AEA228/E31238DC7A3011EE92118B5C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.108.0/24
Signature Algorithm: sha256WithRSAEncryption
49:95:9d:ce:a8:f8:5f:2d:7b:42:18:96:0c:2f:69:72:e6:04:
7b:c7:f8:7e:7e:55:7d:7f:76:3f:d4:7f:01:ad:8c:f2:fd:5a:
5e:2d:7d:c6:8f:65:95:7a:07:7e:9c:a8:1e:fe:ff:f7:5c:95:
55:e2:00:b6:e9:96:b6:a0:ec:76:e1:6a:1c:1a:84:cd:9b:1b:
c6:81:ff:94:63:a3:11:d3:51:06:3b:38:ff:3e:a9:29:fa:27:
66:3c:02:21:74:4e:29:70:2b:ae:d2:6e:59:cb:d8:aa:70:93:
31:cc:ae:8a:9b:0e:89:80:88:51:ff:3b:6a:d5:74:2e:f7:36:
bc:68:df:70:15:a9:05:9a:6d:fd:d8:13:97:a1:8a:8a:8f:7f:
ce:d6:6f:b8:24:de:5f:19:cb:07:08:b7:1c:cc:b7:8f:a2:5b:
80:9d:fb:e8:a0:d7:be:08:a3:31:35:80:e2:e9:f7:20:40:9a:
2c:a4:55:04:cf:d7:f3:17:96:eb:26:f3:93:ad:d1:d6:40:23:
a7:d0:00:ea:97:42:70:2b:10:26:d6:29:fe:ab:bc:38:31:6e:
e1:10:4e:fe:91:aa:db:da:86:71:c0:b5:b0:02:1f:8c:ad:97:
62:c6:b0:c1:00:0b:d8:40:19:7f:a6:bc:5b:5e:91:2e:65:bf:
25:ad:71:a7
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBR4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MjZDQjZBUjExMC8GA1UEBRMoQjlGREQ4OTUzMzQ5NzE2QURBRTdBOEQxQkIxM0ND
MjdGNTIwRkZENjAeFw0yMzExMDMxMDA4MDVaFw0yNDExMDMxMDA4MDVaMBgxFjAU
BgNVBAMTDTY1NDRjNjg4LTJmOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDnTd10Ap/2WWRHAnCvrYJGolpANOHl3b1TS3uMfpgXA3wsLbNuf8OBgoWW
WB60+jHrVRlW4Rcyzlk0OSS+BgV4bkz1bssMCF3c+KC2l9gXaoaFLXN/P/+Fy8D0
REHU7kXeSMFmOQQKEcpvHYCaPAnmFroHTJHsT2OufRu0AteCal5oN10xu2K0Gx3T
fqEt0JqVCNbGTgknj3uFuxWTPxjk4yFeX2xNT8u87xVkvKSKZbbMi0kXUH76864b
PQnWc32QH/6F5rkawHHls2URiI8X4g/MWqqgQUcY8P1yX0X7Xt4FfYczRI6DLsRA
/3WYgo7P6jQN83Pq7obel7MX97YtAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUXYWQ
dFdhbCnMnfQGXIwwVej8ty8wHwYDVR0jBBgwFoAUuf3YlTNJcWra56jRuxPMJ/Ug
/9YwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjI2Q0I2LzAyQjhCOTQ4OEJEOTExRUI5MUM5QTUzN0Y4QUVBMjI4L3VmM1ls
VE5KY1dyYTU2alJ1eFBNSl9VZ185WS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L3VmM1lsVE5KY1dyYTU2alJ1eFBNSl9VZ185WS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjI2Q0I2LzAyQjhCOTQ4OEJEOTExRUI5MUM5QTUzN0Y4QUVB
MjI4L0UzMTIzOERDN0EzMDExRUU5MjExOEI1QzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACcAGwwDQYJKoZIhvcNAQELBQAD
ggEBAEmVnc6o+F8te0IYlgwvaXLmBHvH+H5+VX1/dj/UfwGtjPL9Wl4tfcaPZZV6
B36cqB7+//dclVXiALbplrag7HbhahwahM2bG8aB/5RjoxHTUQY7OP8+qSn6J2Y8
AiF0TilwK67SblnL2KpwkzHMroqbDomAiFH/O2rVdC73Nrxo33AVqQWabf3YE5eh
ioqPf87Wb7gk3l8ZywcItxzMt4+iW4Cd++ig174IozE1gOLp9yBAmiykVQTP1/MX
lusm85Ot0dZAI6fQAOqXQnArECbWKf6rvDgxbuEQTv6RqtvahnHAtbACH4ytl2LG
sMEAC9hAGX+mvFtekS5lvyWtcac=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:07 2024 by rpki-client on console-fra.rpki-client.org